Computer Security

Cisco Unified Communications Manager multiple security vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Cisco Unified Communications Manager multiple security vulnerabilities
Published:25.06.2008
Source:BUGTRAQ
SecurityVulns ID:9110
Type:remote
Level:6/10
Description:Computer Telephony Integration Manager DoS (TCP/2748) The Real-Time Information Server SOAP interface (TCP/2556) unauthorized access.
Affected:CISCO : CallManager 4.1
 CISCO : Unified Communications Manager 4.2
 CISCO : Unified Communications Manager 4.3
 CISCO : Unified Communications Manager 5.1
 CISCO : Unified Communications Manager 6.1
CVE:CVE-2008-2730 (The Real-Time Information Server (RIS) Data Collector service in Cisco Unified Communications Manager (CUCM) 5.x before 5.1(3) and 6.x before 6.1(1) allows remote attackers to bypass authentication, and obtain cluster configuration information and statistics, via a direct TCP connection to the service port, aka Bug ID CSCsj90843.)
 CVE-2008-2062
 CVE-2008-2061
Original documentdocumentCISCO, Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service and Authentication Bypass Vulnerabilities (25.06.2008)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server